Intelligence and National Security Alliance
Cyber Threat Analyst - Clearance Required
Intelligence and National Security Alliance, Arlington, Virginia, United States, 22201
Description
ICF seeks a highly motivated and proactive Cyber Threat Analyst to support a federal national security client. This role is a critical position on a high-performing, multi-disciplinary team. The Cyber Threat Analyst will be responsible for monitoring and analyzing cybersecurity threats by identifying vulnerabilities, assessing risks, and developing strategies to mitigate potential attacks. This role will also perform threat intelligence research, analyze patterns, and create actionable reports to safeguard organizational systems and data. We're looking for someone who is curious and proactive when it comes to the cyber domain. The position is a hybrid role, and on-site work will be conducted in Arlington, VA. Responsibilities
Conduct threat analysis to identify, assess, and prioritize potential cybersecurity risks, providing actionable insights to strengthen organizational security posture. Contextualizes and enriches technical information (IP addresses/domains/file hashes/TTPs/etc.), using open-source and commercial data and Intelligence (classified/partner insight/etc.) to formulate/execute operational recommendations. Identifies anomalies in network and host data; identifies vulnerabilities in data streams based on software/hardware attributes and can extrapolate using alternative methods/sources. Deeply familiar with core networking components (DNS, HTTP/S, SMTP, SSL/TLS, etc.) and can identify anomalies/malicious artifacts therein. Familiarity with Advanced Persistent Threats (APTs), their Tactics, Techniques, and Procedures (TTPs), and methods to detect these adversaries. Apply analytical frameworks, including threat cell methodologies, to evaluate and address cybersecurity risks, enabling informed decision-making and proactive threat mitigation. Authors/maintains robust documentation in knowledge management portals. Summarizes findings, drafts technical reports/presentations, and is able to disseminate/present findings tailored to a variety of audiences, translating complex information into clear, actionable insights for technical and non-technical stakeholders. Ability to map technical insights to the MITRE ATT&CK or other cyber frameworks. Performs open-source and intelligence research on identified priorities and emerging events to enable the team with the most current operational picture. Leverages artificial intelligence to increase productivity/complete tasks, while ensuring analytic integrity/accuracy. Collaborate with cross-functional teams in a technical setting to solicit new insights and collaborate on joint priorities. Contribute to special projects and other duties as assigned. Required Qualifications
U.S. Citizenship (required by federal government for position) Active TS/SCI clearance 4 years of experience supporting federal cyber security programs Additional Qualifications
Experience with Python or other scripting language tool Bachelor’s degree in a relevant field, for example cybersecurity, information technology or 4 years equivalent experience Proficiency in MS Office Applications (SharePoint, Lists, PowerBI, Word, PowerPoint, Outlook, Teams, Excel) Customer service orientation with interpersonal, organizational, problem-solving, and strategic thinking skills Excellent oral and written communication skills Highly organized and detail-oriented Strong analytical, problem-solving, and decision-making capabilities. Ability to work cohesively with clients, their customers, and internal ICF counterparts. Preferred Qualifications
Familiarity with handling and triaging malware samples. Strong working knowledge of Python or similar scripting languages. Experience working in a classified environment. Ability to work well both individually and in a team environment. Ability to prioritize multiple tasks while demonstrating the initiative to complete projects with minimum supervision. Working at ICF ICF is a global advisory and technology services provider. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We are an equal opportunity employer. We are committed to providing a workplace where everyone can thrive and share their expertise. Reasonable accommodations are available, including for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email candidateaccommodation@icf.com. All information you provide will be kept confidential and used only to provide needed reasonable accommodations. Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in Coverage Act. Pay Range
- The pay range for this position, based on full-time employment, is $107,936.00 - $183,491.00. Virginia Client Office (VA88)
#J-18808-Ljbffr
ICF seeks a highly motivated and proactive Cyber Threat Analyst to support a federal national security client. This role is a critical position on a high-performing, multi-disciplinary team. The Cyber Threat Analyst will be responsible for monitoring and analyzing cybersecurity threats by identifying vulnerabilities, assessing risks, and developing strategies to mitigate potential attacks. This role will also perform threat intelligence research, analyze patterns, and create actionable reports to safeguard organizational systems and data. We're looking for someone who is curious and proactive when it comes to the cyber domain. The position is a hybrid role, and on-site work will be conducted in Arlington, VA. Responsibilities
Conduct threat analysis to identify, assess, and prioritize potential cybersecurity risks, providing actionable insights to strengthen organizational security posture. Contextualizes and enriches technical information (IP addresses/domains/file hashes/TTPs/etc.), using open-source and commercial data and Intelligence (classified/partner insight/etc.) to formulate/execute operational recommendations. Identifies anomalies in network and host data; identifies vulnerabilities in data streams based on software/hardware attributes and can extrapolate using alternative methods/sources. Deeply familiar with core networking components (DNS, HTTP/S, SMTP, SSL/TLS, etc.) and can identify anomalies/malicious artifacts therein. Familiarity with Advanced Persistent Threats (APTs), their Tactics, Techniques, and Procedures (TTPs), and methods to detect these adversaries. Apply analytical frameworks, including threat cell methodologies, to evaluate and address cybersecurity risks, enabling informed decision-making and proactive threat mitigation. Authors/maintains robust documentation in knowledge management portals. Summarizes findings, drafts technical reports/presentations, and is able to disseminate/present findings tailored to a variety of audiences, translating complex information into clear, actionable insights for technical and non-technical stakeholders. Ability to map technical insights to the MITRE ATT&CK or other cyber frameworks. Performs open-source and intelligence research on identified priorities and emerging events to enable the team with the most current operational picture. Leverages artificial intelligence to increase productivity/complete tasks, while ensuring analytic integrity/accuracy. Collaborate with cross-functional teams in a technical setting to solicit new insights and collaborate on joint priorities. Contribute to special projects and other duties as assigned. Required Qualifications
U.S. Citizenship (required by federal government for position) Active TS/SCI clearance 4 years of experience supporting federal cyber security programs Additional Qualifications
Experience with Python or other scripting language tool Bachelor’s degree in a relevant field, for example cybersecurity, information technology or 4 years equivalent experience Proficiency in MS Office Applications (SharePoint, Lists, PowerBI, Word, PowerPoint, Outlook, Teams, Excel) Customer service orientation with interpersonal, organizational, problem-solving, and strategic thinking skills Excellent oral and written communication skills Highly organized and detail-oriented Strong analytical, problem-solving, and decision-making capabilities. Ability to work cohesively with clients, their customers, and internal ICF counterparts. Preferred Qualifications
Familiarity with handling and triaging malware samples. Strong working knowledge of Python or similar scripting languages. Experience working in a classified environment. Ability to work well both individually and in a team environment. Ability to prioritize multiple tasks while demonstrating the initiative to complete projects with minimum supervision. Working at ICF ICF is a global advisory and technology services provider. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We are an equal opportunity employer. We are committed to providing a workplace where everyone can thrive and share their expertise. Reasonable accommodations are available, including for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email candidateaccommodation@icf.com. All information you provide will be kept confidential and used only to provide needed reasonable accommodations. Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in Coverage Act. Pay Range
- The pay range for this position, based on full-time employment, is $107,936.00 - $183,491.00. Virginia Client Office (VA88)
#J-18808-Ljbffr